Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 VLANs.

Published byTimothy Jayson Hardy Modified over 7 years ago

Similar presentations

Presentation on theme: "© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 VLANs."— Presentation transcript:

1 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 VLANs

2 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 2 Some requirements of LANs Separate Broadcast Domains  Need to split up broadcast domains to make good use of bandwidth  People in the same department may need to be grouped together.  Security: restrict access by certain users to some areas of the LAN

3 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 3 Some requirements of LANs  Provide a way for different areas of the LAN to communicate with each other  Each LAN must have a on the backbone layer three device (router).  Each LAN must have a separate port on the backbone layer three device (router). Separate Broadcast Domains

4 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 4 Solution using routers BUT  Routers are expensive  Routers are slower than switches  Subnets are restricted to limited physical areas  Subnets are inflexible

5 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 5 Another Solution: Using VLANs in Switches  VLAN membership can be by function/port and not by location.  VLANs managed by switches

6 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 6  VLANs provide segmentation based on.  VLANs provide segmentation based on broadcast domains.  VLANs logically segment switched networks based on the functions, project teams, or applications of the organization not by physical location.  Communication among VLANs still require a router. BUT, will handle all routing.  Communication among VLANs still require a router. BUT, only one physical connection will handle all routing. Separate Broadcast Domains Solution using VLANs

7 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 7 Defining VLANs  A VLAN allows: Creation of groups of logically networked devices.  Each VLAN is a separate broadcast domain. Broadcast traffic is controlled.  Each VLAN is a separate IP subnet. The devices to act as if they are on their own independent network. To communicate among VLANs, you must use a router (MUCH more later).

8 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 8 VLANs  A better design still creates the 3 separate broadcast domains but only requires 1 switch.  The router provides broadcast filtering over a single link. One Physical Link

9 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 9 Benefits of VLANs  Security  Cost reduction  Higher performance  Broadcast storm mitigation  Improved IT staff efficiency and management.

10 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 10 VLAN Numbers  VLAN information is stored in the VLAN database.  vlan.dat in the flash memory of the switch.

11 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 11 VLAN Port Membership Modes

12 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 12 Static VLAN (Port-centric)  Benefit of CLI mode, if a port is put on a VLAN and the VLAN does not exist, then the VLAN is created. So..  If VLAN 20 did not exist before – then it does now.

13 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 13 Dynamic VLAN  Not widely used.  Use a VLAN Membership Policy Server (VMPS).  Assign a device to a VLAN based on its MAC address.  Connect device, server assigns VLAN.  Useful if you want to move devices around.

14 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 14 Types of VLAN  Data or user VLAN  Voice VLAN  Management VLAN  Native VLAN  Default VLAN

15 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 15 Data VLAN  Carry files, e-mails, shared application traffic, most user traffic.  Separate VLAN for each group of users.

16 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 16 Voice VLANs HAS SPECIAL requirements: to ensure voice quality.  Assured bandwidth to ensure voice quality. over other types of network traffic.  Transmission priority over other types of network traffic. around congested areas on the network.  Ability to be routed around congested areas on the network.  Delay of less than 150 milliseconds (ms) across the network. Voice VLAN

17 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 17  Voice VLANs: VLAN 150 is designed to carry voice traffic. ConnectionsConnections Voice VLAN

18 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 18 Ensures that voice traffic is identified as priority traffic. Voice VLAN Data VLAN Voice VLAN

19 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 19 A Cisco IP Phone is a switch.  Voice VLANs: A Cisco IP Phone is a switch. Port 1 connects to the switch or VoIP device. Port 2 is an internal 10/100 interface that carries the phone traffic. Port 3 connects to a PC or other device. Voice VLAN

20 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 20 A Cisco IP Phone is a switch.  Voice VLANs: A Cisco IP Phone is a switch. Switch S3 is configured to carry voice traffic on VLAN 150 and data traffic on VLAN 20. Sending: Phone tags voice traffic with VLAN 150 and sends data traffic untagged. The switch will tag the data traffic for VLAN 20. Sending: Receiving: Phone acts on voice traffic and removes the tag for data traffic destined for the PC. Receiving: MORE on the tagging process later… Voice VLAN

21 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 21 A Cisco IP Phone is a switch.  Voice VLANs: A Cisco IP Phone is a switch. Link to the switch acts as a trunk link to carry both voice and data traffic. CDP is used to communicate between the switch and the phone. CDP Voice VLAN

22 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 22 Voice VLANs : Sample Configuration

23 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 23 Default VLAN  VLAN 1 on Cisco switches.  Carries CDP and STP (spanning tree protocol) traffic.  Initially all ports are in this VLAN.  Do not use it for data, voice or management traffic for security reasons.  Cannot rename or delete VLAN1.

24 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 24 Default VLAN Switch

25 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 25 Management and Native VLAN  Has the switch IP address.  Used for telnet/SSH or web access for management purposes.  Better not to use VLAN 1 for security reasons.

26 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 26 VLAN Trunks  What problem does it solve? Network 172.17.10.0/24 Network 172.17.20.0/24 Network 172.17.99.0/24 Network 172.17.30.0/24

27 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 27 Tag to identify VLAN  Tag is added to the frame when it goes on to the trunk  Tag is removed when it leaves the trunk

28 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 28 Frame tagging IEEE 802.1Q Dest AddSource AddType/LenDataFCSDest AddSource AddType/LenDataFCSTag Normal frame Add 4-byte tag, recalculate FCS Tag protocol ID 0x8100 PriorityCFI for token ring VLAN ID 1 - 4096

29 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 29 Native VLAN and 802.1Q Trunking  Tagged Frames on Native VLAN  Control traffic sent on the native VLAN should be untagged.  Switch will drop tagged frames received from the native VLAN.  Devices from other vendors that support tagged frames on the native VLAN include IP phones, servers, routers, and non-Cisco switches.

30 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 30  Configure the trunk to default to native VLAN 1.  Configure the trunk for native VLAN 99. Configure trunk port  By default native VLAN is 1.

31 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 31 Verification of Trunk Port

32 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 32 Trunking Operation PC1 and PC3 send a broadcast. 1010 2020 3030 1010 2020 3030 S2 receives the frames and ‘tags’ them with the VLAN ID. The tagged frames are sent across the trunk links between S2 and S1 and S1 and S3. S3 strips the tags and forwards to the destination.

33 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 33 Dynamic Trunking Protocol (DTP): Cisco proprietary protocol. Switches from other vendors do not support DTP. DTP manages trunk negotiation only if the port on the other switch is configured in a trunk mode that supports DTP.

34 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 34 DTP Modes

35 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 35 Trunking Modes Access Mode Trunk Mode

36 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 36 Controlling Broadcast Domains with VLANs  Intra-VLAN Communications:

37 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 37 Controlling Broadcast Domains with VLANs :  Intra-VLAN Communications :

38 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 38 Controlling Broadcast Domains with VLANs  Intra-VLAN Communications:

39 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 39 Controlling Broadcast Domains with VLANs  Intra-VLAN Communications:

40 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 40 Layer 3 Switch Forwarding  Layer 3 Switch: A Layer 3 switch has the ability to route transmissions between VLANs. The procedure is the same as described for the inter-VLAN communication using a separate router.  Switch Virtual interface (SVI): A logical interface (SVI) is configured for each VLAN configured on the switch.

41 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 41 Layer 3 Switch Forwarding  Layer 3 Switch : Contains the SVI 20 information…NOT SVI 10 SVI 10 knows about SVI 20 (the location of VLAN 20).

42 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 42 Configure VLANs on the Switches in a Converged Network Topology  The steps to configure trunks and VLANs

43 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 43 Creating and Naming VLANs  For verification, use the command S1 # show VLAN brief

44 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 44 Configure a VLAN Verify VLAN configuration

45 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 45 Show commands

46 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 46 Show commands output  S1#show VLAN name student  S1#show VLAN summary

47 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 47 Assign switchport

48 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 48 Verification of port memberships  S1#show vlan brief

49 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 49  S1#show interfaces fa0/18 switchport Verification of port memberships

50 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 50 Managing VLANs  Remove vlan 20 from switchport fa 0/18.  Verification

51 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 51 Managing VLANs - Reassignment  Reassigning vlan20 to port fa0/11  Verification

52 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 52 SW1(config)#no vlan 20 SW1(config)#end  VLAN 20 is deleted.  Any ports still on VLAN 20 will be inactive. They need to be reassigned. SW1#delete flash:vlan.dat  Erasing the startup configuration does not get rid of VLANs because they are saved in a separate file.  Switch goes back to the default with all ports in VLAN 1.  You cannot delete VLAN 1. Managing VLANs – Deleting VLANs

53 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 53 Deleting VLANs  Before deletion.  After deletion.

54 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 54 Configure Trunk Ports

55 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 55 Configuring Trunk Ports

56 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 56 Verification  Verification native trunk

57 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 57 Managing Trunks  Reset Example  Remove Example

58 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 58 Common Software or Hardware Misconfigurations Associated with VLANs

59 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 59 Native VLAN Mismatch

60 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 60 Native VLAN Mismatch - Solution  Output from Switch 3  Output from Computer PC4

61 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 61 Trunk Mode Mismatch  Outputs from Switch 1  Outputs from Switch 3

62 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 62 Trunk Mode Mismatch-Solution  Output from Switch 1  Output from Switch 3  Output from Computer PC4

63 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 63 Incorrect VLAN List  Output from Switch 3  Output from Switch 1

64 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 64  Outputs from Switch 1  Output from Computer PC5 Incorrect VLAN List - Solution

65 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 65 VLANs and IP Subnets

66 © 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 66 VLANs and IP Subnets - Solution

Download ppt "© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 VLANs."

Similar presentations

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 VLANs LAN Switching and Wireless – Chapter 3.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 VLANs LAN Switching and Wireless – Chapter 3.
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—2-1 Extending Switched Networks with Virtual LANs Introducing VLAN Operations.

© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—2-1 Extending Switched Networks with Virtual LANs Introducing VLAN Operations.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 3: VLANs Routing & Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 3: VLANs Routing & Switching.
Virtual LANs.

Virtual LANs.
Cisco 3 - Switch Perrine. J Page 15/8/2015 Chapter 8 What happens to the member ports of a VLAN when the VLAN is deleted? 1.They become inactive. 2.They.

Cisco 3 - Switch Perrine. J Page 15/8/2015 Chapter 8 What happens to the member ports of a VLAN when the VLAN is deleted? 1.They become inactive. 2.They.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 3: VLANs Routing & Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 3: VLANs Routing & Switching.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 VLANs LAN Switching and Wireless – Chapter 3.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 VLANs LAN Switching and Wireless – Chapter 3.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 VLANs LAN Switching and Wireless – Chapter 3.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 VLANs LAN Switching and Wireless – Chapter 3.
VLANs- Chapter 3 CCNA Exploration Semester 3 Modified by Profs. Ward

VLANs- Chapter 3 CCNA Exploration Semester 3 Modified by Profs. Ward
Layer 2: Redundancy and High Availability Part 1: General Overview on Assignment 1.

Layer 2: Redundancy and High Availability Part 1: General Overview on Assignment 1.
© Wiley Inc. 2006. All Rights Reserved. CCNA: Cisco Certified Network Associate Study Guide CHAPTER 8: Virtual LANs (VLANs)

© Wiley Inc All Rights Reserved. CCNA: Cisco Certified Network Associate Study Guide CHAPTER 8: Virtual LANs (VLANs)
Virtual LANs. VLAN introduction VLANs logically segment switched networks based on the functions, project teams, or applications of the organization regardless.

Virtual LANs. VLAN introduction VLANs logically segment switched networks based on the functions, project teams, or applications of the organization regardless.
Sybex CCNA 640-802 Chapter 9: VLAN’s Instructor & Todd Lammle.

Sybex CCNA Chapter 9: VLAN’s Instructor & Todd Lammle.
VLANs.ppt CCNA Exploration Semester 3 Chapter 3

VLANs.ppt CCNA Exploration Semester 3 Chapter 3
CCENT Study Guide Chapter 11 VLANs and Inter-VLAN Routing.

CCENT Study Guide Chapter 11 VLANs and Inter-VLAN Routing.
Virtual LAN (VLAN) W.lilakiatsakun.

Virtual LAN (VLAN) W.lilakiatsakun.
Voice VLANs Lecture 7 VLANs.ppt 21/04/ Apr-17

Voice VLANs Lecture 7 VLANs.ppt 21/04/ Apr-17
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 3: Implementing VLAN Security Routing And Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 3: Implementing VLAN Security Routing And Switching.
Virtual LAN Design Switches also have enabled the creation of Virtual LANs (VLANs). VLANs provide greater opportunities to manage the flow of traffic on.

Virtual LAN Design Switches also have enabled the creation of Virtual LANs (VLANs). VLANs provide greater opportunities to manage the flow of traffic on.
Semester 3, v Chapter 3: Virtual LANs

Semester 3, v Chapter 3: Virtual LANs

Similar presentations

Ads by Google